Spy Trojan

Trojan-Spy.Win32.Agent.cwpz removal instruction

Malware Removal

The Trojan-Spy.Win32.Agent.cwpz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Spy.Win32.Agent.cwpz virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Dynamic (imported) function loading detected
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid

How to determine Trojan-Spy.Win32.Agent.cwpz?



File Info:

name: E846847B46F92AB74CD2.mlw
path: /opt/CAPEv2/storage/binaries/02635dcf5effce94f9e31608f90c455f2c1aabf2ed6aa7ea673428057a975a95
crc32: DC4759F4
md5: e846847b46f92ab74cd23b3acda45c01
sha1: 75a78e737f493bddd2312c12f81de9904ae6fc9b
sha256: 02635dcf5effce94f9e31608f90c455f2c1aabf2ed6aa7ea673428057a975a95
sha512: 95110a6d4c707ff4695a6ee75d326a25b3dee8fe210811ee32acca2d4c5fe82cb70f10c34b8fb1b0ef0a9b9adedc9338144fc7f592b2facb0a1818a5384bf60f
ssdeep: 3072:tD/R9gx3+KnoDKYllOsayunsZNqu2h3gzx7FqZnhEkECEOPV0ed87yCjEFcIB4i:tDQsbZkGwhLtcIB4
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BD44725AE711B029F483C4B13934936B28692D3115949C4FF781BF5A72B42E3A8B6F1F
sha3_384: 254f5ded768cfaf2a12cfc19c673c22da076b4ccb51f5041734e541c03b3ed43b28b71cc8f798ba121c89be59244b72a
ep_bytes: 68c49d4000e8f0ffffff000000000000
timestamp: 2010-02-22 00:25:43


Version Info:

Translation: 0x0804 0x04b0
CompanyName: qasoft
ProductName: occachd
FileVersion: 7.00
ProductVersion: 7.00
InternalName: imjmipg
OriginalFilename: imjmipg.exe

Trojan-Spy.Win32.Agent.cwpz also known as:

Elasticmalicious (high confidence)
CylanceUnsafe
SangforTrojan.Win32.Agent.buxin
KasperskyTrojan-Spy.Win32.Agent.cwpz
NANO-AntivirusTrojan.Win32.Agent.dvagry
McAfee-GW-EditionBehavesLike.Win32.BadFile.dm
SophosGeneric PUA HF (PUA)
MicrosoftTrojan:Win32/Wacatac.B!ml
McAfeeArtemis!E846847B46F9
TACHYONTrojan-Spy/W32.VB-Agent.266240.D
APEXMalicious
RisingSpyware.Agent!8.C6 (CLOUD)
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.CWPZ!tr
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Trojan-Spy.Win32.Agent.cwpz?

Trojan-Spy.Win32.Agent.cwpz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment